CLAIMS 



1. A data transfer device, having first data interface means for exchanging 
data with a data processing system, second data interface means for exchanging data with a user 
of said data transfer device, and control means for controlling data transfer between said first and 
second data interface means wherein said control means are configured for receiving control data 
from said first data interface means for selectively enabling data exchange between said first and 
second data interface means. 

2. A data transfer device according to claim 1 wherein said control means are 
configured for processing data provided by said first and second data interface means in 
accordance with said control data. 

3. A data transfer device according to claim 1 wherein said control means are 
configured for processing data provided by said first and second data interface in accordance 
with program execution data to be executed by said data processing system, wherein said 
program execution data being comprised by said control data. 

4. A data transfer device according to claim 1 wherein said control means are 
configured for enabling part of said first and second data interface means for operation in an 
open mode. 

5. A data transfer device according to claim 1 wherein said control means are 
configured for enabling said second data interface means for operation in a secure mode. 

6. A data transfer device according to claim 1 wherein said control means are 
configured for enabling said second data interface means for operation in a secure mode and for 
executing program execution data if said data transfer device is set in a secure mode of 
operation. 
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7. A data transfer device according to claim 1, further comprising data 
storage means for storing authentication data, wherein said control means are configured for 
providing an authentication check on received control data for setting said data transfer device in 
either one of an open and secure mode of operation. 

8. A data transfer device according to claim 1, further comprising data 
storage means for storing certificate data, wherein said control data comprise certificate data, and 
said control data means are configured for checking said certificate data of said control data with 
respect to certificate data stored in said data storage means, for setting said data transfer device 
in a secure mode of operation if said certificate data of said control data are approved and for 
setting said data transfer device in an open mode of operation for either one of disapproval of 
said certificate data and non-availability of certificate data of said control data, and for deleting 
said control data if said certificate data thereof are false. 

9. A data transfer device according to claim 1 wherein said control means are 
configured for enabling part of said first and second data interface means for operation in an 
open mode, and wherein said control means are configured for enabling said second data 
interface means for operation in a secure mode, said second data interface comprises keypad 
means, data card reader means and display means, said control means in said open mode are 
configured for enabling access to said data card reader means, and said control means in said 
secure mode are configured for enabling access to said keypad means, data card reader means 
and display means. 

10. A data transfer device according to claim 9 wherein said control means are 
configured for processing data provided by said card reader means in accordance with said 
control data received. 

11. A data transfer device according to claim 1 wherein said control means are 
configured for enabling part of said first and second data interface means for operation in an 
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open mode, and wherein said control means are configured for enabling said second data 
interface means for operation in a secure mode, wherein said second data interface comprises 
Input/Output (I/O) means for data exchange with at least one peripheral device to be connected 
to said I/O means, and wherein said control means in said secure mode are configured for 
enabling access to said I/O means by said at least one peripheral device. 

12. A data transfer device according to claim 11 wherein said I/O means are 
configured for connecting at least one data communication device. 

13. A data transfer device according to claim 1 1 wherein said I/O means are 
configured for connecting at least one Voice over IP (VoIP) digital telephone device. 

14. A data transfer device according to any of the claims 1 wherein said 
control means are configured for enabling part of said first and second data interface means for 
operation in an open mode, and wherein said control means are configured for enabling said 
second data interface means for operation in a secure mode, further comprising signaling means 
for signaling said mode of operation of said data transfer device. 

15. A data transfer device according to claim 14 wherein said signaling means 
comprise a Light Emitting Diode (LED), and said control means are arranged for illuminating 
said LED if said data transfer device is in its secure mode of operation. 

16. A data transfer device according to claim 1, further comprising means for 
supporting encrypted data transfer via said first interface means. 

17. A data transfer device according to claim 1 wherein said first data 
interface means comprise standardized computer data interface means, such as USB (Universal 
Serial Bus) interface means. 
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18. A transaction system, comprising a first processing device such as to be 
operated by an authorization entity, a second processing device such as to be operated by a user, 
and a data transfer device having first data interface means for exchanging data with a data 
processing system, second data interface means for exchanging data with a user of said data 
transfer device, and control means for controlling data transfer between said first and the second 
data means, wherein said first and second processing devices connect to a data network, said data 
transfer device with its first interface means connects to said second processing device, and said 
first and second processing devices being configured for exchanging control data from said first 
processing device to said data transfer device for selectively enabling said second data interface 
means of said data transfer device. 

19. A transaction system according to claim 18 wherein said transaction 
involves exchange of trusted data, wherein said first processing device is configured for 
providing control data for setting said data transfer device in a secure mode. 

20. A transaction system, according to claim 18, comprising a third processing 
device such as to be operated by a transaction entity, wherein said third processing device 
connects to said data network, and said first processing device being configured for enabling a 
transaction between said second and third processing devices dependent on said enabling of said 
second data interface means of said data transfer device. 

21. A transaction system according to claim 20 wherein said transaction 
between said second and third processing devices involves exchange of trusted data between said 
first and second processing devices, wherein said first processing device is configured for 
providing control data for setting said data transfer device in a secure mode of operation and 
wherein said third processing device is configured for enabling said transaction between said 
second and third processing devices after said trusted data have been successfully exchanged. 
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22. A transaction system according to claim 20 wherein said second data 
interface comprises Input/Output (I/O) means for data exchange with at least one peripheral 
device to be connected to said I/O means, said transaction between said second and third 
processing devices involves exchange of trusted data between said first and second processing 
devices, said first processing device being configured for providing control data for setting said 
data transfer device in a secure mode of operation and said third processing device is configured 
for enabling a transaction between said I/O means and said third processing device after said 
trusted data have been successfully exchanged. 

23. A transaction system according to claim 20 wherein said transaction entity 
is a telecommunication service provider. 

J:::f 24. A transaction system according to claim 20, comprising a plurality of first, 

fti second and third processing devices wherein said data network is a public data network, such as 

A first processing device configured for operating in accordance with 

A second processing device configured for operating in accordance with 

A third processing device configured for operating in accordance with 

A method of exchanging data with a data processing system using a data 
transfer device having first data interface means for exchanging data with said data processing 
system, second data interface means for exchanging data with a user of said data transfer device, 
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the Internet. 

25. 

claim 18. 

26. 

claim 18. 

27. 

claim 20. 

28. 



and control means for controlling data transfer between said first and second data interface 
means, said method comprising the steps of: 

transferring control data from said data processing system to said data transfer 

device, and 

selectively enabling exchange of data between said first and second data interface 

means. 

29. A method according to claim 28 wherein an authentication check is 
performed by said control means on said control data for setting the data transfer device in either 
one of an open and secure mode of operation. 

30. A method according to claim 29 wherein said control data comprise 
certificate data, wherein said control data being checked by said control means with respect to 
said certificate data, and wherein said data transfer device is set in its secure mode of operation if 
said certificate data of said control data are approved and said data transfer device is set in its 
open mode of operation for either one of disapproval of said certificate data and non-availability 
of certificate data of said control data, said control data being deleted if said certificate data 
thereof are false. 

31. A method according to claim 30 wherein said data transfer device in its 
open mode of operation exchanges data with said second data interface means through a limited 
number of data input means thereof, including data card reader means, wheieas the data transfer 
device in its secure mode of operation exchanges data with said second data interface means 
through a plurality of data input and output devices thereof, including keypad means, display 
means, card reader means, and Input/Output (I/O) means for data exchange with at least one 
peripheral device to be connected to said I/O means. 

32. A method according to claim 28 wherein data provided by said first and 
second data processing means are processed in accordance with program execution data of a 
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program executed by said data processing system, said program execution data being comprised 
by said control data. 

33. A method according to claim 31 wherein said I/O means are enabled and 
disabled under control of program execution data of a program executed by said data processing 
system, said program execution data being comprised by said control data. 

34. A method according to claim 33 wherein said program execution data are 
operative in said data transfer device while a data card operatively connects to said card reader 
means. 

35. A method according to claim 28 wherein data between said data 
processing system and said data transfer device are exchanged in an encrypted form. 

36. A method according to claim 28 wherein control data in said data transfer 
device are erased after the completion of a data exchange. 

37. An Application Specific Integrated Circuit (ASIC) device comprising data 
exchange means and control means for selectively enabling data exchange between first and 
second data interface means based on control data in accordance with claim L 

38. An ASIC device according to claim 37, further comprising at least one of 
said first and second data interface means. 

39. An ASIC device according to claim 37, further comprising data processing 
means for processing data provided by said first and second data interface means in accordance 
with program execution data provided by said control data. 
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k 7 

40. An ASIC device according to claim 37, further comprising data storage 
means, among others for storing said control data, said program execution data and 
authentication data. 
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